[macOS] - Crowdstrike Device Verification not working even though data.zta is present – Twingate

If you are experiencing issues on macOS with Crowdstrike Device Verification, and have confirmed that the data.zta file exists and is populated as per this article - the issue may be related to file or directory permissions.

It is important that the Crowdstrike directories and the data.zta file belong to the root user and the wheel group, otherwise the Twingate client is unable to read/verify the contents of the file and verify the machine.

In some instances, we have seen that the directories or file belong to the root user but the admin group, rather than the wheel group.

The following commands run in your Terminal will reset the appropriate permissions on the directories and files to ensure the Twingate client can read the information properly.

sudo chown root:wheel /Library/Application\ Support/CrowdStrike
sudo chmod 755 /Library/Application\ Support/CrowdStrike
sudo chown root:wheel /Library/Application\ Support/CrowdStrike/ZeroTrustAssessment
sudo chmod 744 /Library/Application\ Support/CrowdStrike/ZeroTrustAssessment
sudo chown root:wheel /Library/Application\ Support/CrowdStrike/ZeroTrustAssessment/data.zta
sudo chmod 644 /Library/Application\ Support/CrowdStrike/ZeroTrustAssessment/data.zta

In this article:

Related articles